I have an SSL application which, from time to time, stops responding to SSL requests, i.e. no SSL client is able to connect to the server until it has been restarted. Based on evidence from nearby servers, I think this might be triggered by some DOS attack.

Are there any options in the library for low-level tracing of connections, SSL handshaking, etc. so I can see what might be responsible?